Cybersecurity
New LastPass breach post-mortem raises questions
Attackers targeted DevOps engineers' home devices...
Cybersecurity
Pentagon CIOs slapped over cloud security by auditors days before 3TB of emails exposed
Days before the exposure this week of over three terabytes of military emails owing to misconfigured Azure services, the US Department of Defense (DoD)’s Inspector General had warned Pentagon CIOs that their teams were not properly reviewing documentation designed to ensure military cloud security – and running systems with unmitigated
Cybersecurity
IBM high speed file transfer software exploited by hackers
A pre-auth RCE in IBM Aspera Faspex is being exploited in the wild
Cloud
AWS EC2 permissions configuration change draws cheers, confusion
What... what's happening here exactly?
Cybersecurity
GoDaddy punched in the cPanel server by hackers
Pshaw “no material adverse impact”
Cybersecurity
FBI says cyber incident is “contained” after apparent child sexual abuse systems breach
Did malware-riddled digital evidence evade scans before upload?
Cybersecurity
Hackers eye “Havoc” for C2 diversity, as Cobalt Strike detections improve
Hackers appear to be increasingly adopting the Havoc command and control (C2) framework, security researchers say. The open source framework, developed by C5pider, supports the building of offensive agents in several formats including Windows PE executable, PE DLL and shellcode and is an alternative to the paid for (or cracked)
Cybersecurity
Microsoft’s Valentine’s Day gift: Patches for 3 CVEs being exploited
February’s Patch Tuesday brings the post-Valentine’s Day hangover of 75 bug fixes from Microsoft including three for CVEs known to be exploited in the wild: CVE-2023-21715, CVE-2023-23376 , and CVE-2023-21823. Strikingly, more than half of the bugs fixed this month are remote code execution (RCE) vulnerabilities. (A record 26,
Cybersecurity
This critical enterprise file transfer software is being actively exploited
In early 2021 a successful attack by hackers on Accellion, a file transfer service provider, resulted in significant repercussions downstream: Energy supermajor Shell, global law firm Goodwin Procter, and investment bank Morgan Stanley were among the blue chips that saw data stolen as a result. Now a critical vulnerability in
Cybersecurity
Over 83,000 ESXi servers are internet-exposed as mass attack continues
VMware denies zero day being used
Cybersecurity
Securing cloud-native architecture at scale: From runtime to remediation
The way we instrument for security doesn't require us to put out 25 different agents
Cybersecurity
VMware ESXi ransomware attacks continue: 500+ hit
This story has been updated here on February 8. Security researchers are reporting an explosion in the compromise of VMware ESXi hypervisors with over 500 machines hit by ransomware this weekend, with the automated attacks likely exploiting CVE-2021-21974. As The Stack published, some 20 ESXi machines were reportedly being ransomed